CISO Platform presents an exciting opportunity to listen to Hugo Teso, who recently “created global news by demonstrating how an aircraft can be compromised and remotely controlled by using an android phone"!
Thought this webinar is super exciting and here's a blog for it.
Watch Video(Webinar by Hugo Teso):
View PPT:
Key Points:
- Importance of Air Transport- 2.8 Billion people flown & 38 Million flights in 2011
- Aviation field requires Aviation Systems Understanding along with Information Security Professional Skills
- Traditional Technologies
1.Primary Surveillance Radars(PSS) Vs Secondary Surveillance Radars(SSR)
2.Analog Cockpits Vs Digital Cockpits - New Risks & Attack Vectors
1.Discovery-ADS B Technology, this communication can be easily hacked into and all route maps fetched
Gathering-ACARS Technology, very sensitive data about aircraft systems can be fetched
2.Other attacks shown in aviation security have been on protocol but here it is software/system exploitation
3.(FMS)Flight Management System- primary interface for data entry or information display & provides flight trajectory, navigation, guidance etc. This is a good target for taking over as it communicates with almost any important system.
Manipulated code was injected here in the demo.
4.Ground service providers with Radio communication system enabled by software is highly vulnerable
5.Unmanned aircrafts will be highly vulnerable targets in terms of vulnerable systems and protocols
Comments